Home page logo
/

dailydave logo Dailydave mailing list archives

Re: Times up!
From: Mike Johnson <mike () enoch org>
Date: Thu, 23 Oct 2008 23:36:36 -0700

Fionnbharr wrote:
http://blog.threatexpert.com/2008/10/gimmiva-exploits-zero-day-vulnerability.html

"Critical vulnerability in Server Service has only been patched by
Microsoft (MS08-067), as a new worm called Gimmiv.A has been found
exploiting it in-the-wild."

Just to split hairs, Gimmiv is a trojan, not a worm.  It's just a
keylogger.  It in and of itself does not spread.  I have no idea why the
Threatexpert blogger called it a worm, everyone else calls it a trojan.
 While I do not claim to be an expert, the samples I have seen with my
own eyes are trojans and don't have the ability to spread.

That said, it won't take much for someone to write self-replicating code
exploiting this vulnerability.

Mike
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]